Identity Authentication

Get simple, secure multi-factor authentication experiences for any customer, anywhere, in any channel – mobile, web, contact center, or in-person. From traditional to passwordless, choose from methods that meet the needs of your organization and your customers’ journeys, including knowledge, possession, and inherence-based factors.

Choose your authentication factors, or let your customers choose
Increase customer satisfaction by simplifying interactions
Reduce the need for identity recovery
Mitigate identity fraud

Frost & Sullivan Radar - Biometric Authentication Leader

Daon is a Frost Radar™ Leader for Biometric Authentication Solutions

Read the Report

Identity authentication is the process of validating a known user to grant them access to an account, device, or service. Common authentication factors include “what you know” (knowledge: password, security question), “what you have” (possession: one-time password, or OTP, registered mobile device), and “who you are” (inherence: facial, voice, and fingerprint biometrics). In order to maximize the effectiveness of authentication, it is recommended to use two or more factors. The challenge with authentication is to balance security with the friction it may create for the customer.

Daon’s authentication applications can provide the authentication factors you need for each of your customer interactions. Our solutions can support every point of access, from web to mobile to contact center, and allow you to customize each authentication process to maximize security while providing the optimum user experience, including giving your customers the choice of the factor that works best for them.

While Daon can provide everything from passwords to push notifications, integrating biometrics into the authentication process is the first step to strengthening security while improving the customer experience. As these authentication factors are based around who the user is, biometrics cannot be lost, stolen, or forgotten. In fact, they are immune to most social engineering threats like phishing, and using them is as easy as looking into a camera, touching a sensor, or saying a few words, making them not only customer friendly, but hihgly accessible.

Integrating biometric factors with a second, preferably passwordless factor creates the strongest form of authentication security. This can even be done “invisibly” by using a second factor that authenticates the user through a registered device.

Daon’s authentication products offer multi-channel solutions and can operate on their own or be directly integrated with our verification solution to create a seamless customer journey that we call Identity Continuity.

Daon offers three authentication products to fit your business requirements:

xAuth
Multi-factor authentication that offers a choice of mobile, web, and cross-channel factors for customers to build authentication processes that meet their business needs.

Learn About xAuth

xFace
Highly secure, server-based facial biometric authentication for organizations that need to protect high-value data or meet regulatory standards.

Learn About xFace

xVoice
Low-friction authentication for mitigating fraud in contact centers and other voice-based access points to sensitive information.

Learn About xVoice

Isn’t biometric identity authentication the same thing as Face ID on my phone?
Yes… but. Face ID uses FIDO authentication which stores and manages biometric templates on the user’s device. Our xAuth product can integrate Face ID into your authentication processes. On-device biometrics, however, have their limitations when it comes to fraud prevention. The most obvious is that they can be easily overridden with a PIN, which is one of the least secure forms of authentication. To optomize your identity security, it’s best to include a second factor. Also, if your customers will need to make high-value transactions, it is recommended to move to a stronger form of biometric authentication. Our xFace application stores biometric templates on a secure, encrypted server, providing a level of fraud prevention suitable for transactions at any risk level.

Are passkeys the same thing – a passwordless form of authentication?
Again, yes… but. Passkeys are a way of providing broad integration of passwordless access that leverages technology like Face ID. They are a promising alternative to passwords, but because they use your device login, which generally relies on lower security authentication factors as a back-up to ensure access, there are limitations to how secure they can be. Like with Face ID, Daon can implement passkeys into your authentication processes, but our xAuth application can also augment them with secondary factors to increase their level of security.

If biometrics are so secure, why do I need more factors?
While biometrics is a huge step forward from passwords and other legacy authentication solutions, no single security solution is 100% safe or immune to fraud. Adding a second factor brings your identity security that much closer to being totally infallible. Think of each authentication factor as a wall with a few small holes in it. If you stack those walls, it’s very unlikely that the holes will line up.